$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa File: c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa (raw, json) Hash identifier: 8ELOHhADmSvzKIm3aRiNXKBVOeVoS5aADE9YQ5q0NRM= Subject key identifier: 96:1B:B0:D8:62:53:9A:36:20:D6:42:62:5A:35:15:CA:6B:F5:49:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FE8275A8B589C2C2A5F5CC5B0112904727FEEEB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa Signing time: Wed 23 Jul 2025 00:30:19 +0000 ROA not before: Wed 23 Jul 2025 00:30:19 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.17.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:e8:27:5a:8b:58:9c:2c:2a:5f:5c:c5:b0:11:29:04:72:7f:ee:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:30:19 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=5cb7ac291338321590895046178dbd3911f513a7077092f08d5b9dddc361dfb5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3a:d3:d6:62:b0:8f:77:31:a1:8b:2a:2e:79: 2b:21:2d:80:17:be:ec:7d:0d:cd:41:80:a3:3a:bf: a8:21:22:76:d9:07:97:7a:31:5c:91:fd:8b:58:fc: 8c:b9:64:4b:b5:86:3d:e6:3b:0a:0d:a5:da:67:a2: 58:c9:b9:ef:79:18:ec:0b:0e:0f:c5:14:f4:bb:b4: 0e:a1:42:9c:94:1e:3a:91:f5:52:10:f0:76:43:69: 3c:68:f6:29:8f:a0:3d:d3:28:84:f1:0f:c7:f8:a9: 60:9a:4f:c6:71:d4:f1:8a:f4:da:98:c2:03:79:df: 0d:b3:da:f5:36:80:02:f8:a7:72:6d:d3:a0:41:b4: 1d:d0:4f:89:cc:e6:44:c3:eb:36:48:8b:38:11:29: cc:cf:21:6a:73:22:6d:5f:fa:c5:01:9d:2e:13:15: 50:c5:c5:bf:28:d3:e3:fc:13:07:ec:9b:d9:ce:e2: 22:d0:b3:f9:bc:4a:4a:75:23:6a:26:f2:4e:58:1d: f6:55:9b:df:d2:13:e8:8e:07:82:5b:05:f4:dc:1d: c3:39:2c:b1:af:95:9e:16:9a:96:24:ae:50:66:7c: 8d:f7:5b:d8:aa:fa:4b:bf:31:96:25:e4:28:3b:d5: 1e:60:99:87:cb:a7:4d:dc:73:a3:dc:62:e4:d3:bb: 88:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1B:B0:D8:62:53:9A:36:20:D6:42:62:5A:35:15:CA:6B:F5:49:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.17.64.0/18 Signature Algorithm: sha256WithRSAEncryption 9c:29:a2:21:73:18:bc:4a:63:2f:9c:a2:a5:14:11:ed:17:8e: 68:8a:54:7e:ca:8f:9e:77:37:79:af:c7:1b:52:53:e0:d1:2b: 82:0b:ab:a4:6c:22:4c:50:3d:d1:1b:d1:06:11:e6:12:15:78: bb:83:6a:1b:4c:54:ac:15:06:37:96:4b:1c:7b:06:3f:86:d5: b8:84:11:cb:3a:9d:0d:c6:5b:c8:02:6d:83:65:fa:d5:9b:05: 37:ef:fa:ae:50:ca:8b:25:7d:12:58:b5:65:0a:95:73:c6:39: 19:38:87:18:1d:43:8d:9c:22:cd:ec:1b:df:43:82:7b:77:2a: 3e:fc:04:6b:ac:a1:63:01:7f:08:6b:c3:d8:fb:22:e2:3b:78: 53:5a:8a:d9:4d:d7:bb:c6:48:14:59:6b:71:b9:ec:dc:9a:ca: 93:42:66:3d:bb:57:68:75:de:18:0d:53:04:3e:9f:ec:bc:06: be:3e:81:22:3f:a9:eb:e0:98:ad:b5:f4:13:b3:47:df:b2:af: 71:83:1c:0a:75:25:96:e4:dc:78:b7:55:e8:07:b4:a8:92:20: 94:79:aa:1f:1b:63:78:61:41:16:2b:fd:01:33:4b:b4:e9:6f: 17:d6:57:3b:16:87:95:bb:49:60:4f:67:93:16:aa:36:21:1e: ce:2b:b4:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL+gnWotYnCwqX1zFsBEpBHJ/7uswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAzMDE5WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2I3YWMyOTEzMzgzMjE1OTA4OTUwNDYxNzhkYmQzOTEx ZjUxM2E3MDc3MDkyZjA4ZDViOWRkZGMzNjFkZmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4OtPWYrCPdzGhiyoueSshLYAXvux9Dc1BgKM6v6ghInbZ B5d6MVyR/YtY/Iy5ZEu1hj3mOwoNpdpnoljJue95GOwLDg/FFPS7tA6hQpyUHjqR 9VIQ8HZDaTxo9imPoD3TKITxD8f4qWCaT8Zx1PGK9NqYwgN53w2z2vU2gAL4p3Jt 06BBtB3QT4nM5kTD6zZIizgRKczPIWpzIm1f+sUBnS4TFVDFxb8o0+P8Ewfsm9nO 4iLQs/m8Skp1I2om8k5YHfZVm9/SE+iOB4JbBfTcHcM5LLGvlZ4WmpYkrlBmfI33 W9iq+ku/MZYl5Cg71R5gmYfLp03cc6PcYuTTu4gnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlhuw2GJTmjYg1kJiWjUVymv1SRAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M3OWM5NTQ3LWIyOWMtNGY0MS1iN2MwLTBmYWQyYWJkNDg2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbMEUAwDQYJKoZIhvcNAQELBQADggEBAJwpoiFzGLxKYy+coqUUEe0XjmiK VH7Kj553N3mvxxtSU+DRK4ILq6RsIkxQPdEb0QYR5hIVeLuDahtMVKwVBjeWSxx7 Bj+G1biEEcs6nQ3GW8gCbYNl+tWbBTfv+q5QyoslfRJYtWUKlXPGORk4hxgdQ42c Is3sG99Dgnt3Kj78BGusoWMBfwhrw9j7IuI7eFNaitlN17vGSBRZa3G57NyaypNC Zj27V2h13hgNUwQ+n+y8Br4+gSI/qevgmK219BOzR9+yr3GDHAp1JZbk3Hi3VegH tKiSIJR5qh8bY3hhQRYr/QEzS7TpbxfWVzsWh5W7SWBPZ5MWqjYhHs4rtFE= -----END CERTIFICATE-----Generated at Wed Aug 6 13:12:06 2025 by rpki-client